Threat Intelligence Report

The Resurgence of IoT Malware: Inside the Mirai-Based Botnet Campaign | FortiGuard Labs

📅 August 28, 2025 📰 www.fortinet.com 🔍 12 CVE(s) referenced

A rapidly evolving Mirai-based botnet dubbed "Gayfemboy" is exploiting a wide range of IoT vulnerabilities across multiple industries and countries, using advanced evasion and persistence techniques to gain remote control, launch DDoS attacks, and maintain resilient command-and-control infrastructure.

vendor

CVE-2020-14993, CVE-2020-8515, CVE-2023-1389, CVE-2024-45884, CVE-2024-45885, CVE-2024-45887, CVE-2024-45888, CVE-2024-45890, CVE-2024-45891, CVE-2024-48074, CVE-2024-7120, CVE-2025-20281

🔐 Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

📊 Visual Mindmap

🎯 IOC Extraction

⚔️ MITRE ATT&CK TTPs

📦 STIX 2.1 Bundle